CPE-2DDB73F9-22D8-4868-A56A-69FE8887E1AE Detail

CPE Details

Cisco Web Security Virtual Appliance 8.5.0

Vendor

cisco

Product

web_security_virtual_appliance

Version

8.5.0

Created

2015-06-26
12h41 +00:00

Modified

2015-07-28
10h01 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.0:::::::*

Informations

Vendor

cisco

Product

web_security_virtual_appliance

Version

8.5.0

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-1271	2021-01-20 19h57 +00:00	A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. The vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by inserting malicious data into a specific data field in an affected interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface.	4.8	Medium
CVE-2015-4216	2015-06-26 08h00 +00:00	The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH root authorized key across different customers' installations, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of a private key from another installation, aka Bug IDs CSCuu95988, CSCuu95994, and CSCuu96630.	5
CVE-2015-4217	2015-06-26 08h00 +00:00	The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH host keys across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of a private key from another installation, aka Bug IDs CSCus29681, CSCuu95676, and CSCuu96601.	4.3

Cisco Web Security Virtual Appliance 8.5.0

CPE Details

CPE Name: cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.0:::::::*